304 matches found
Remote code execution
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'...
CVE-2020-1409
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'...
CVE-2020-1409
CVE-2020-1409 is a DirectWrite Remote Code Execution vulnerability in Windows where the attacker can trigger code execution by abusing how DirectWrite handles objects in memory. The connected material confirms the affected area (DirectWrite) and the root cause (memory object handling) and notes h...
DirectWrite Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts wi...
KB4565511: Windows 10 Version 1607 and Windows Server 2016 July 2020 Security Update
The remote Windows host is missing security update 4565511. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows System Events Broker improperly handles file operations. An attacker who successfully exploited this vulnerability...
KB4565535: Windows Server 2012 July 2020 Security Update
The remote Windows host is missing security update 4565535 or cumulative update 4565537. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...
KB4565540: Windows 8.1 and Windows Server 2012 R2 July 2020 Security Update
The remote Windows host is missing security update 4565540 or cumulative update 4565541. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...
KB4565513: Windows 10 July 2020 Security Update
The remote Windows host is missing security update 4565513. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could...
KB4565503: Windows 10 Version 2004 July 2020 Security Update
The remote Windows host is missing security update 4565503. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows System Events Broker improperly handles file operations. An attacker who successfully exploited this vulnerability...
KB4565529: Windows Server 2008 July 2020 Security Update
The remote Windows host is missing security update 4565529 or cumulative update 4565536. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...
KB4558998: Windows 10 Version 1809 and Windows Server 2019 July 2020 Security Update
The remote Windows host is missing security update 4558998. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows System Events Broker improperly handles file operations. An attacker who successfully exploited this vulnerability...
KB4565539: Windows 7 and Windows Server 2008 R2 July 2020 Security Update
The remote Windows host is missing security update 4565539 or cumulative update 4565524. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...
Microsoft Windows PDF Library DirectWrite Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...
Slow performance in applications that use the DirectWrite API on a computer that is running Windows 7 or Windows Server 2008 R2
Slow performance in applications that use the DirectWrite API on a computer that is running Windows 7 or Windows Server 2008 R2 Symptoms On a computer that is running Windows 7 or Windows Server 2008 R2, you may experience slow performance in applications that use the DirectWrite API for example,...
Microsoft Windows Multiple Vulnerabilities (KB4523205)
This host is missing a critical security update according to Microsoft KB4523205 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Microsoft Windows DirectWrite Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft Windows DirectWrite Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2019-1432
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1411...
CVE-2019-1432
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1411...
CVE-2019-1411
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1432...